Conventional account credentials that include a password are becoming obsolete due to their limitations and susceptibility to cyber threats. This demands using alternative authentication methods that eliminate the risks of breaches and phishing. This paper discusses the integration of passwordless authentication into an electronic document management system (EDMS). The authentication method used in the system utilizes a Time-Based One-Time Password (TOTP), which operates security keys in the form of one-time passwords (OTP) that are sent to the users via email, short message service (SMS), or mobile application. The TOTP algorithm is used in the system, allowing time value as a moving factor. The Rapid Application Development (RAD) model was used in the system development and ISO 25010 was used in the evaluation. The sample size of the respondents for the acceptance testing was determined using Krejcie and Morgan’s formula. The research sample involves 10 information technology experts, one on-the-job training (OJT) coordinator, three OJT advisers, and 244 OJT students. Based on the results, the system was rated outstanding (system evaluation=4.66; acceptance evaluation=4.34), implying that the system met its requirements and that passwordless authentication was proven to increase the security of the developed system. This outcome serves as the basis for integrating passwordless authentication into various systems.
passwordless authentication, one-time password (OTP), time-based one-time password (TOTP), possession factor, rapid application development (RAD)
Abacı, K., & Medeni, I. T. (2022). Efficiency of electronic document management systems: A case study. Sci. Educ. Innov. Context Mod. Probl, 5, 75-86.
Afrizal, W., Lubis, M., & Musnansyah, A. (2021). Design approach in Document Management System: the development of EZDESK Dashboard. MATEC Web of Conferences, 348, 01006. https://doi.org/10.1051/matecconf/202134801006
Andriansyah, R. & Elmi, F. (2020). Analysis of the effect of electronic document management system, organizational commitment and work satisfaction on employee performance. International Journal of Innovative Science and Research Technology, 5(8), 944-952.
Angala, D., Casugay, B. C., Estillore, H. M., Lebantino, J., Marcha, S., & Villanueva, G. J. (2023). Development and implementation of Document Management System for ILOCOS sur Polytechnic State College, Tagudin Campus. E-Dawa an International Multidisciplinary Research Journal, 3(Special Issue). https://doi.org/10.56901/hpcb6748
Chebotareva, A. A., & Chebotarev, V. E. (2021). Hardware, biometric and passwordless authentication: vulnerability and cybercrime issues. IOP Conference Series. Materials Science and Engineering, 1069(1), 012038. https://doi.org/10.1088/1757-899x/1069/1/012038
Firdaus, D., & Jumaryadi, Y. (2020). Implementation of Document Management System using Levenshtein Distance Algorithm. International Journal of Computer Applications, 176(16), 18–24. https://doi.org/10.5120/ijca2020920091
Furuberg, I. L., & Øseth, M. (2023). From Password to Passwordless: Exploring User Experience Obstacles to the Adoption of FIDO2 Authentication (Master’s thesis, NTNU).
Gani, D.H.A., Abd Kadir, I.K., Rahman, A.A., & Yunus, A.M. (2024). Electronic document management system in electronic government environment. In A.K. Othman, M.K.B.A. Rahman, S. Noranee, N.A.R. Demong, & A. Mat (Eds.), Industry-Academia Linkages for Business Sustainability, vol 133. European Proceedings of Social and Behavioural Sciences (pp. 585-597). European Publisher. https://doi.org/10.15405/epsbs.2024.05.48
Gonçalves E., Teixeira P., and Silva J.P. (2020). Development of GDPR-Compliant Software: Document Management System for HR Department. 2020 15th Iberian Conference on Information Systems and Technologies (CISTI), Seville, Spain, 1-6. https://doi.org/10.23919/CISTI49556.2020.9140922
Hernandez, R., & Hernandez, R. L. (2022). Delivery, support, and influence of ICT infrastructure towards digital empowerment: A proposed stakeholders’ collaborative framework. International Journal of Open-Access, Interdisciplinary & New Educational Discoveries, 1(2), 48-59.
Jones, S. (2012). eGovernment Document Management System: A case analysis of risk and reward. International Journal of Information Management, 32(4), 396-400. https://doi.org/10.1016/j.ijinfomgt.2012.04.002
Justina, I. A., Oyekan, E. A., & Orogbemi, O. M. (2022). A secured cloud-based electronic document management system. International Journal of Innovative Research and Development, 11(12), 38-45. https://doi.org/10.24940/ijird/2022/v11/i12/dec22010
Kunke, J., Wiefling, S., Ullmann, M., & Lo Iacono, L. (2021). Evaluation of account recovery strategies with FIDO2-based passwordless authentication. arXiv (Cornell University). https://doi.org/10.48550/arxiv.2105.12477
Lyastani, S. G., Schilling, M., Neumayr, M., Backes, M., Bugiel, S. (2020). Is FIDO2 the kingslayer of user authentication? A comparative usability study of FIDO2 passwordless authentication. IEEE Symposium on Security and Privacy. https://doi.org/10.1109/sp40000.2020.00047
M’Raihi, D., Bellare, M., Hoornaert, F., Naccache, D., & Ranen, O. (2005). HOTP: an HMAC-Based One-Time password Algorithm. https://doi.org/10.17487/rfc4226
Malekani, A.W. (2023). Examining the efficacy of electronic document management system and employees’ perceptions of its usefulness at Sokoine University of Agriculture. University of Dar es Salaam Library Journal, 18(1), 112-133. https://dx.doi.org/10.4314/udslj.v18i1.8
Matiushin, I., & Korkhov, V. (2021). Passwordless authentication using magic link technology. 9th International Conference Distributed Computing and Grid Technologies in Science and Education. https://doi.org/10.54546/mlit.2021.89.13.001
Oduguwa, T., & Arabo, A. (2024). Passwordless authentication using a combination of cryptography, steganography, and biometrics. Journal of Cybersecurity and Privacy, 4(2), 278-297. https://doi.org/10.3390/jcp4020014
Parmar, V.H.A., Sanghvi, R., Patel, H. & Pandya, A.S. (2022). A comprehensive study on passwordless authentication. 2022 International Conference on Sustainable Computing and Data Communication Systems (ICSCDS), 1266-1275. https://doi.org/10.1109/ICSCDS53736.2022.9760934
Prasad, A. (2024). A comparative study of passwordless authentication. TechRxiv. https://doi.org/10.36227/techrxiv.171560547.71979752/v1
Rathnayaka, L.S.D., Malsha Nadeetharu, B.K. & Kulatunga, U. (2024). Applicability of electronic document management system (EDMS) for the cost management of mega construction projects in Sri Lanka. Journal of Financial Management of Property and Construction, 29(2), 314-330. https://doi.org/10.1108/JFMPC-01-2023-0005
Rosa, A. P. M. D., & Galang, G. M. (2023). Development of a curriculum management system for a state university in the Philippines. International Journal of Emerging Technologies in Learning (iJET), 18(18), 222–233. https://doi.org/10.3991/ijet.v18i18.39377
Rydell, J., Pei, M., & Machani, S. (2011). TOTP: Time-based one-time password algorithm. https://doi.org/10.17487/rfc6238
Shakil, A. F., Zaidi, S. A., & Rafiullah, S. (2023). Exploring the need of internship program for productive learning among students at college level in Pakistan. Voyage Journal of Educational Studies, 3(2), 1–16. https://doi.org/10.58622/vjes.v3i2.43
Tkachenko, A. L., & Денисова, Л. А. (2022). Designing an information system for the electronic document management of a university: automatic classification of documents. Journal of Physics: Conference Series, 2182(1), 012035. https://doi.org/10.1088/1742-6596/2182/1/012035
Ukwandu, E., & Bennett, A. (2023). Exploring the views of end-users on passwordless authentication methods. https://doi.org/10.2139/ssrn.4616393
Yoshimura, Y., Suga, Y., Omori, Y., Yamashita, T., & Shibata, A. (2019). Privilege sharing and transfer based on passwordless authentication. NTT Technical Review, 17(6), 37–40. https://doi.org/10.53829/ntr201906fa11
Zabukovšek S.S., Jordan, S., Bobek, S. (2023). Managing document management systems’ life cycle in relation to an organization’s maturity for digital transformation. Sustainability, 15(21), 15212. https://doi.org/10.3390/su152115212
Sincerest gratitude to the following institutions: Cavite State University, First Asia Institute of Technology and Humanities, and the Commission on Higher Education. The completion of the study will not be possible without their significant contribution.
St. Joseph M. Lumbog. Corresponding author. Instructor I, Cavite State University. Email: josephlumbog@gmail.com
Maricel M. Gaspar. First Asia Institute of Technology and Humanities. Email: mlmalabanan@firstasia.edu.ph
Cite this article:
Lumbog, S.J.M. & Gaspar, M.M. (2024). Internship management system with passwordless authentication for university stakeholders. International Journal of Science, Technology, Engineering and Mathematics, 4(3), 126-153. https://doi.org/10.53378/ijstem.353104
License:
This work is licensed under a Creative Commons Attribution (CC BY 4.0) International License.